Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The add_job function in scheduler/ipp.c in cupsd in CUPS before 2.0.3 performs incorrect free operations for multiple-value job-originating-host-name attributes, which allows remote attackers to trigger data corruption for reference-counted strings via a crafted (1) IPP_CREATE_JOB or (2) IPP_PRINT_JOB request, as demonstrated by replacing the configuration file and consequently executing arbitrary code.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Apple CUPS 权限许可和访问控制问题漏洞
Vulnerability Description
Apple CUPS(Common Unix Printing System)是美国苹果(Apple)公司的一套开源的用于OS X和类Unix系统的打印系统。该系统基于Internet打印协议(IPP),提供大多数PostScript和raster打印机服务。 Apple CUPS 2.0.2及之前版本的cupsd中的scheduler/ipp.c文件中的‘add_job’函数存在安全漏洞,该漏洞源于程序没有对多值job-originating-host-name属性执行正确的释放操作。远程攻击者可通过发
CVSS Information
N/A
Vulnerability Type
N/A